Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
File: xZKgYJDwFpQNMesbCbrhLZSxlbA.mft (raw, json)
Hash identifier: JzrDXUVwdGax1oFCvIHvCYIyvaFWKh+gHm4NVBY0i0M=
Subject key identifier: 22:C3:72:6A:9A:A1:70:C1:03:C4:50:7B:4E:20:03:6F:76:27:FE:A4
Authority key identifier: C5:92:A0:60:90:F0:16:94:0D:31:EB:1B:09:BA:E1:2D:94:B1:95:B0
Certificate issuer: /CN=c592a06090f016940d31eb1b09bae12d94b195b0
Certificate serial: 0197B70E6D553525680890292F81AECE5568
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZKgYJDwFpQNMesbCbrhLZSxlbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
Manifest number: 0495
Signing time: Sat 28 Jun 2025 15:01:05 +0000
Manifest this update: Sat 28 Jun 2025 15:01:05 +0000
Manifest next update: Sun 29 Jun 2025 15:01:05 +0000
Files and hashes: 1: tOD7ZPqas8UpTT4bdLzx0MJD5rk.roa (hash: k/eXxf7557SFB+l+Q/mWhChu1kZsTZ07A3b0mG1jAsA=)
2: xZKgYJDwFpQNMesbCbrhLZSxlbA.crl (hash: ROVEb2ZqMLCs8/mDJwpxoEnheZ4NnSHArCjlDEhZrL0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xZKgYJDwFpQNMesbCbrhLZSxlbA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:6d:55:35:25:68:08:90:29:2f:81:ae:ce:55:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c592a06090f016940d31eb1b09bae12d94b195b0
Validity
Not Before: Jun 28 15:01:05 2025 GMT
Not After : Jun 29 15:01:05 2025 GMT
Subject: CN=22c3726a9aa170c103c4507b4e20036f7627fea4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:1d:64:18:5f:c8:10:c5:ff:33:5d:c6:06:06:
ca:d7:35:b8:99:b2:db:e3:92:82:dd:d5:8e:a6:c6:
f5:15:71:72:3f:98:aa:b2:5e:07:77:bb:00:64:d8:
01:d7:6b:45:8e:b6:91:e4:7e:89:93:a4:bf:6f:f9:
9a:6d:17:c6:26:43:f8:0b:90:12:d0:8c:82:c9:7a:
74:ad:03:f6:3b:1f:0d:89:26:19:3c:0a:7b:3a:06:
95:a0:6a:6a:7c:fc:1f:5d:01:92:33:b1:92:1a:63:
f1:be:32:40:0d:a3:32:14:6d:bf:99:3a:54:28:b5:
60:51:eb:ef:d6:2a:28:75:4e:0d:a5:80:7e:c6:97:
62:73:4d:07:88:3f:fd:68:d9:a5:b7:85:9a:d4:d8:
25:fe:7e:1d:d4:eb:fa:92:12:cc:5d:55:ef:a4:e5:
56:86:19:0c:22:a3:39:36:62:bf:f9:8e:88:89:9e:
e4:0f:26:72:d4:c6:ac:d9:2e:c5:23:9f:1e:a6:fe:
ab:2e:af:24:ab:72:48:7b:48:9e:83:f3:f6:80:a6:
16:29:ac:a4:6c:ba:c7:a2:48:e2:f9:69:cb:25:69:
93:a3:66:49:7b:cf:86:4f:e5:c6:3e:8f:75:aa:78:
21:17:0e:8a:31:6d:f0:4f:b4:c7:98:eb:1d:2f:6f:
04:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:C3:72:6A:9A:A1:70:C1:03:C4:50:7B:4E:20:03:6F:76:27:FE:A4
X509v3 Authority Key Identifier:
keyid:C5:92:A0:60:90:F0:16:94:0D:31:EB:1B:09:BA:E1:2D:94:B1:95:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZKgYJDwFpQNMesbCbrhLZSxlbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:ac:ec:73:f3:35:9c:72:32:36:f9:31:f3:21:1c:ed:67:df:
f6:82:33:a3:f6:83:15:c2:ea:76:25:5a:1a:eb:fe:63:42:c2:
ff:2d:0a:e0:cb:6d:b8:2c:c1:c0:ad:64:51:74:7c:8d:ac:fb:
15:07:ba:eb:0a:c8:2e:09:d9:2e:ce:a0:1e:73:47:ab:a5:9f:
52:8d:ae:75:40:c1:f4:2a:32:97:39:03:e5:d1:32:de:99:b4:
c0:4b:ea:27:9a:8b:33:ff:15:83:10:ee:10:39:9b:f2:a8:f0:
97:ef:70:b4:e5:0d:f1:28:fa:f1:34:d1:17:1c:95:1f:0c:71:
cf:1f:df:fe:b8:87:44:c9:a3:8b:83:ad:1d:a8:71:5c:fc:a7:
88:5b:bc:43:e4:62:43:32:f7:3d:b7:5c:30:c4:ec:eb:92:a8:
e0:fe:a7:1e:a2:b1:75:3c:ae:b5:c6:e2:57:00:2e:4b:25:bf:
c5:90:24:ea:69:6a:29:c8:f3:0e:35:ff:29:fe:d8:eb:df:01:
24:92:ba:2a:03:de:68:8c:97:eb:ea:96:3d:b4:b1:45:76:f4:
06:be:8b:5d:ed:7c:7f:79:09:97:7a:b9:ec:c8:cc:9a:c8:5f:
21:9e:0e:a1:fd:c1:8b:c8:59:6a:ba:05:1f:db:2e:27:8e:64:
b3:8f:a5:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:11:14 2025 by rpki-client